Privacy isn’t an administrative checkbox at Jmoor — it’s built into how the platform is designed, operated, and governed. Here’s exactly how we collect, use, protect, and retain your information.
Privacy at a glance
Jmoor does not sell personal information. Full stop.
Encryption in transit and at rest, role-based access, and MFA across every layer.
Access, correct, delete, port, or restrict your data — and withdraw consent.
Designed with PIPEDA, GDPR-style transparency, and CCPA/CPRA in mind.
This summary is for convenience only and does not replace the full policy below.
Jmoor is committed to protecting the privacy, security, confidentiality, and integrity of the personal, financial, payroll, tax, accounting, workforce, compliance, and business information entrusted to us.
Jmoor provides an integrated financial operating system for businesses, accountants, employees, contractors, partners, and authorized users. Because our platform may process highly sensitive information, privacy is not treated as an administrative requirement — it is a core part of how our platform is designed, operated, monitored, and governed.
This Privacy Policy explains how we collect, use, disclose, store, protect, retain, and manage personal information when you use our website, platform, products, services, applications, integrations, APIs, communications, and support channels.
This policy is designed with reference to major privacy frameworks including Canadian privacy law under PIPEDA, GDPR-style transparency principles, and U.S. privacy expectations such as the CCPA/CPRA where applicable. Canadian organizations subject to PIPEDA must protect personal information through appropriate safeguards and report certain breaches where there is a real risk of significant harm.
This Privacy Policy applies to information collected through:
This policy applies to:
Depending on the context, Jmoor may act in different roles:
A Data Controller
We act as a controller when we determine why and how personal information is processed — for example, collecting website analytics, managing sales inquiries, processing account registration, sending service communications, or administering customer relationships.
A Data Processor or Service Provider
We act as a processor or service provider when we process personal information on behalf of a business customer, CPA firm, employer, or authorized organization using Jmoor to manage payroll, HR, accounting, compliance, tax, or payments.
A Joint or Independent Service Participant
In limited cases involving payment processors, banking partners, identity verification providers, tax filing partners, or compliance infrastructure providers, each party may have independent legal obligations.
Jmoor may collect the following categories of information.
4.1 Business Contact Information
4.2 Account & User Information
4.3 Payroll & Employment Information
4.4 Tax & Compliance Information
4.5 Accounting & Financial Information
4.6 Payments & Banking Information
4.7 Identity Verification, AML, and KYC Information — where required for compliance, fraud prevention, financial services, or regulated workflows, Jmoor or its partners may collect:
4.8 Website & Technical Information
4.9 Communications & Support Information
Jmoor may process sensitive information where necessary to provide payroll, tax, compliance, employment, identity verification, payment, accounting, or financial services. Sensitive information may include:
We only process sensitive information where necessary, authorized, legally required, or contractually permitted.
We collect information:
Jmoor uses information to:
7.1 Provide the Platform
7.2 Support Compliance & Legal Obligations
7.3 Improve Platform Performance
7.4 Communicate With You
7.5 Marketing & Business Development
Where permitted, we may use business contact information to send product information, invite users to webinars, share educational content, provide offers or updates, and conduct customer research. Users may opt out of marketing communications at any time.
Where applicable, Jmoor processes personal information based on one or more of the following legal bases:
GDPR-style privacy notices generally require organizations to explain what data is collected, why it is processed, legal bases, retention periods, sharing, rights, and international transfer practices.
Where consent is required, we seek meaningful, informed consent before collecting, using, or disclosing personal information. Consent may be provided:
You may withdraw consent where permitted by law. Withdrawal of consent may limit our ability to provide certain services.
Jmoor may process or store information in countries outside your province, state, or country of residence. Where personal information is transferred internationally, we use appropriate safeguards such as:
Jmoor applies administrative, technical, and organizational safeguards designed to protect information from unauthorized access, disclosure, alteration, misuse, loss, or destruction. Safeguards may include:
No system can guarantee absolute security, but we continuously work to strengthen our controls.
We retain personal information only for as long as necessary to provide services, meet contractual obligations, support payroll, tax, accounting, and compliance requirements, maintain audit trails, resolve disputes, enforce agreements, and comply with legal, regulatory, and reporting obligations.
Retention periods may vary depending on:
When information is no longer required, we securely delete, anonymize, or archive it according to applicable policies and legal requirements.
We may use analytics tools to understand how visitors interact with our website. Analytics may include:
We use this information to improve website usability, content quality, security, and performance.
Jmoor may use automation and AI-assisted capabilities to support:
Where automated processing is used, we aim to maintain human oversight for high-impact decisions — especially where decisions may affect payroll, tax, compliance, financial services, or access to services.
Depending on your jurisdiction, you may have rights to:
California residents may have rights under the CCPA/CPRA, including rights to know, delete, correct, opt out of sale or sharing, and limit use of sensitive personal information where applicable.
To exercise privacy rights, contact the Privacy Office at Jmoor Inc. — privacy@jmoor.com.
We may need to verify your identity before fulfilling a request. If your information is controlled by your employer, CPA firm, accountant, or another Jmoor customer, we may direct your request to that organization.
Jmoor is designed for businesses and professional users. Our services are not intended for children.
We do not knowingly collect personal information from children except where such information is provided by an employer, parent, guardian, or authorized organization for lawful payroll, benefits, tax, or employment-related purposes.
Where Jmoor processes employee or contractor data on behalf of a customer, the customer is responsible for ensuring that it has the required authority, consent, notice, and legal basis to submit the information to Jmoor.
Employees and contractors should contact their employer or contracting organization for questions about payroll, employment, or HR records.
Where CPA firms, accountants, or advisors use Jmoor to manage client organizations, those firms are responsible for ensuring they have appropriate authorization to access, process, and manage client data.
Jmoor provides technical and operational safeguards to support secure multi-client management.
Jmoor may integrate with third-party services. These providers may have their own privacy policies and legal obligations. Examples include:
Users should review third-party privacy notices where applicable.
If Jmoor becomes aware of a security incident involving personal information, we will assess the incident, contain the risk, investigate the cause, and notify affected parties where required by law or contract.
Under PIPEDA, organizations must report certain breaches to the Privacy Commissioner of Canada where it is reasonable to believe the breach creates a real risk of significant harm.
Jmoor maintains privacy governance practices designed to support responsible data handling. These may include:
We aim to collect only the information reasonably necessary to provide, secure, improve, and support our services.
We discourage customers from uploading unnecessary personal, financial, or sensitive information that is not required for the intended workflow.
Customers and authorized users are responsible for ensuring information submitted to Jmoor is accurate, complete, and current.
Jmoor may provide validation tools, review workflows, alerts, and audit trails, but customers remain responsible for verifying business, payroll, tax, and compliance inputs.
You may unsubscribe from marketing emails at any time by using the unsubscribe link in the email or contacting us.
Even after opting out of marketing, you may still receive transactional, security, billing, compliance, or service-related communications.
We aim to make privacy information clear, accessible, and understandable.
Upon request, we may provide this Privacy Policy in an alternative format where reasonably possible.
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, security practices, or business operations.
When we make material changes, we may notify users through the website, platform, email, or other appropriate channels.
For privacy questions, requests, complaints, or concerns, contact the Jmoor Privacy Office.
Jmoor exists to give businesses confidence in every number, every workflow, and every compliance obligation. Protecting personal, financial, payroll, tax, and business information is central to that promise.
Jmoor Privacy Office
Protecting your personal, financial, payroll, tax, and business information is central to that promise.